As I always say, use more than one source of material when studying for any exam. One should be the official guide and the other should be from an expert who has the ability to explain things in a way that sticks in your head that maybe the official book couldn't do. Shon's book was my choice back when it was in its 2nd edition, and now the 4th is available. Wow how time flies... or I'm just getting old. I like her writing style, and this has been a crowd favorite since the first edition. If you're going for your CISSP, you won't be sorry checking this one out:

Fully revised for the latest exam release, this authoritative volume offers thorough coverage of all the material on the Certified Information Systems Security Professional (CISSP) exam. Written by a renowned security expert and CISSP, this guide features complete details on all 10 exam domains developed by the International Information Systems Security Certification Consortium (ISC²). Inside, you'll find learning objectives at the beginning of each chapter, exam tips, practice questions, and in-depth explanations. CISSP All-in-One Exam Guide, Fourth Edition will not only help you pass the test, but also be your essential on-the-job reference.

Simulated exam with practice questions and answers Video training from the authorComplete electronic book

About the Author

Shon Harris, CISSP, MCSE, is the president of Logical Security, an IT security consulting and training company. She is a former engineer in the Air Force's Information Warfare unit, an instructor, and the bestselling author of the previous three editions of this book. Shon has taught computer and information security to a wide range of clients, including RSA, the Department of Defense, the Department of Energy, the National Security Agency (NSA), and many more.

Hope this helps,Don

Last edited by don on Wed Jan 16, 2008 10:32 pm, edited 1 time in total.

[quote=tehdavil]However, more than one instructor called the Official (Isc)2 Guide to the CISSP CBK a good sleep aid! [/quote]

That instructor wasn't too far off. I had made up my mind that I was going to read that entire thing cover to cover prior to taking any classes. Let's just say that because I was stubborn about it, and got sleepy a LOT, my goal was pushed back by about a month.

But it worked. Passed on the first try with 2.5 hours to spare.

I'd recommend reading both...or at least hitting up the Official Guide for the domains with which you're less familiar. And don't forget about Clement's site, www.cccure.org! One of the best free resources available.

willguibr: It is funny that you mentioned that, it never bothered me, but I did notice all the she/her. I realize the author is a female, but I think it is funny how much I noticed it, and I have to think the reason has to be because there is hardly any female security analysts. Heck, I can honestly say I don't know a single one personally.

I will agree this is a must have book. You can buy it so cheap off Amazon, and when I took the CISSP all I used was this book. Mostly read the whole thing, then took the test. Took me about 4 days, and I passed just fine. (yes granted I had years of experience)